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(57) Abstract: A smart card device is provided which may be directly hooked to a network or Internet via a phone or other com- 
^ munication interfaces. The smart card device includes a sman card reader and a communications interface, such as a MODEM, (54) 

an infra-red interface, RF, tone, or an Ethernet interface, and a minimal device controller. (52) A system and method for remotely 

verifying the identification (authentication) of the user of a smart card are also provided, and for completing the remote transaction. 

The invention supports two key functions (remote authentication and remote secure transaction) which can be carried out while the 
^ communication is not interrupted, and specifically (in the case of the telephone) while the call is in progress. 
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SMART C AitD NETWORK INTERFACE DEVICE 



FIELD OF THE INVENTION 
The present iiwaition rdates to the fidd of smart cards in general and in particular to a 
5 stand-alone device for reading smart cards and transmitting information therefrom. 



BACKGROUND OF THE INVENTION 
Currently available smart card readers are typically integrated into computers or 
configured as computer peripheral equipment, connected to the serial port of a personal 

10 computer, for example. Smart card readers may also be integrated with cellular phone or set- 
top-boxes (TV), or built into other equipment such as bank termmals, and keyboards, for 
example, Genoralty, the host appliance whether a computer, a cdlular phone, or a Set-Top- 
Box, is req)onable for providing the network intarfece. Normally anart card readere rely on the 
host device to provide standard input-output (I/O) uiterfece for the human-user on top of the 

1 5 network connectivity. The necessity of a host device limits the scope of smart card applications. 
For example, at pres^ each cashi^ vAth eadi mapcbant site requires its own host device, such 
as a PC or a Point of Sale (POS) device, in order to read a card and if necessary interface with 
the cOTtral computer system. 

Cellular phones may use the SIM dup of the phone itself as a smart card, but this usage 

20 is limited to a specific application and does not allow for general-purpose smart card access. 
Alternatively, a standard-size smart card reader may be integrated with the (cellular) phone. In 
the latter case, the reader is dependent on specific properties of the device or on the cellular 
service pro\dder and therefore it is third party dependent The phone needs to be programmed to 
recognize each specific card in use, or alteroatively the approval of cellular telephone operator is 

25 required. 

Set-top-box applicadons are limited to a communicating via a unique server, for a 
spedfic card (the cable-opOTtor card, or oUier pre-set cards), and temian-interface is through the 
TV. 

Th^e is ftus a need for a stand-rfone device which does not need a separate host device, 
30 or be integrated in a host device, such as a computer, a POS, or a cellular phone, for example. 
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and which allows any standard card to establish a commumcation with the appropriate server, to 
implement the desired smart card applicatbns. 

SUMMARY OF TEffi INVENTION 

5 The pres^ invration is directed to a stand-al(me device for reading and writing smart 

cards, wliich incoiporates its own processing and network inter&ce. The device may be 
integrated into a telephone or other network-accesang device, which can capture the network 
connectivity. Furthamore, the general-purpose device allows for access for aiiy card application 
for any smart card. Even when integrated into telephones (cellular or landline), for example, the 

10 device does not have to rely on spedfic telephone prop^es nor on the service provider, but 
rather it provides a general-purpose network access ov^ telephone, or assy other network media. 

Tlie computing power of the card is used for handling the required application layers, 
while the computing on the device is used only for network interfedng. The device provides 
communication interfaces allowing the smart card to be expldted in its full potential, uti]i2ing the 

15 security capabilities of the smart card, and supporting authentication using the (optional) PIN 
. (Personal IdaitificationNund^er). Input and ou^ for tiie user may be pro^dded through dtber 
the telephone, or optionally, an on-device display and keyboard 

In an embodiment of the present invention, there is provided a device, which includes a 
smart card reader and a communications inter&ce, and a controUa* that transfors data between 

20 these two interfaces. The communications wte^&cc may be at least one interface including 
MODEM, infianred (IR), Ethernet, rado frequency ^F), audio tones or any other 
comnttjnication media, coupled to the smart card reader. 

In a fiirther embodiment of the present invention, there is provided a system for ronotely 
verifying the identification (authentication) of the user of a smart card. The system includes the 

25 smart card device of the invention and a remotely located server in communication with the 
communications interface, the server having means for verifying the validity of the smart card 
bdng read by the smart card device, and other data keyed into the device. The remotely located 
server may further comprise means for validating a certificate or means for generating a 
chalieiige Hhst is then authmticated by the appropriate response from the device. The remotely 

30 located server may fiirther comprise means for transfaring e-^ods or e-money. 
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Furthermore, the smart card device may be configured to be coimectable between a 
telephone and the wall socket of a telephone line or to a cellular telephone. 

Furthermore, the conmiunications inter&ce may include at least one of a grou^ including 
a MODEM, Ethernet, injGra-red (ffi), RF and audio tones. 
S Furthmnore, the smart card device may include a display scre^ and a numeric and/or 

functions keypad. The device may also include enaryplion means and a connector for extemal 
devices. The external de\dces md^y inchide a printer, a keypad and a biometric data reader. 

Furtliennore, the power source may include at least one energy source fiom a group 
inducfing an mtemal battety, an external power inl^ the communication media to which the 
1 0 device is coupled and a rechargeable battery. 

Furdiennore, the smart card device may include at least one of a group including a 
printer, a keypad and a biometric data reader integrated witMn the device. The smart card 
device may further include at least one of a group of processing components including a 
additional computation capabilities, additional communication interfaces and additional 
1 5 encryption capabilities. 

Furth^more, the smart card reader may include at least one memory component 
including Read Only Memory (ROM), Non-Volatile Memory (NVM) and Random Access 
MOTiory(RAM). 

In another embodiment of the present invention, there is provided a method for verifying 
20 the ideotification of the remote user of a smart card, the method including the steps of inserting a 
smart card into a smart card device of the invaition, transmitting data to and from the smart 
card, via the commuiucations hiterfece, to a remotdy located server, the remotely located server 
transferring transaction information to the smart card device for approval, inputting privately 
known information into the smart card device and transmitting the proof of agnature (certificate) 
25 to the remotely located server, and the remotely located server verifying that the prirvately known 
information is the valid one for the card. 

In another embodiment of tlie present invention, there is provided a method for remotely 
purchasing goods or services, the method including the steps of inserting a smart card into a 
smart card device of the invention, sdecting an item to be purchased fi^om a supplier, 
30 transmitting data read fi-om the smart card, via the communications interfece, to a remotely 
located server in communication with the supplier, the remotely located server transferring 
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transaction infonnatioa associated with the purchase to the smart card device for approval, and 
storing the transaction information in the smart card. 

Furthermore, the method may include the step of authenticating the identity of the smart 
card user. The step of authenticating may include the steps of inputting privatdy known 
5 information, the smart card verifymg that the privately known information matches the smart 
card data, and generating a certificate validating the transaction. 

Furthemiore;, the step of authenticating may be performed by the remotely located 

server 

Furthermore;, the transaction may involve e-goods, wMch can thm be stored on the card 
1 0 itself for a later use. 



BRIEF DESCRIPTION OF THE DRAWINGS 
The above and other characteristics and advantages of the invention will be better 
imderstood through the following illustrative and non-limitative detailed description of preferred 
1 5 embodmients thereof with reference to the appended drawings, wherein: 

Fig, 1 is a sch^natic illustration of a prior art esiample of an operational environment for 
use with smart cards; 

Fig. 2 is a schematic illustration of a smart card device constructed and operative 
according to an embodiment of liie invention; 
20 Fig. 2a is a schematic illustration of the smart card de\ice of Fig. 2 hooked on to a 

standard tdephon^ 

Fig. 3 is a schematic illustration of a smart card device, of Fig. 2 hooked on to a cellular 
telephone; 

Fig. 4 is a flow chart illustration of the use of the smart card device of Fig. 2; 
25 Fig. 5 is a schematic illustration of a smart card device, according to another embodim^t 

of the invention; and 

Fig. 6 is a flow chart illustration of a ftirther use of the smart card device of Rg, 2. 



30 



DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS 
Reference is now made to Fig. 1, which is a schematic illustration of a prior art example 
of an operational environment for use vwth smart cards. 
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In the configuration of Fig. 1, a smart card 12, wMch may be inserted in a smart card 
reader 14 is in communication witii a host device, sudi as personal computer (PC) 16. 
Communication between the card reader 14 and the host device 16 may be via any peripheral- 
device to PC communication interfece, for example an RS-232 communication interfece 18. A 
MODEM 20 is connected to host device 16. 

Data is read from the smart card 12 by smart card reader 14 and ttansfeired via the 
peripho-al-device to communication int^ace 18. The Host device 16 manages the interactions 
with die card, and vih&i desked it transfers information from and to host device 16 to and from 
tiie card 12. To transfer data onwards, the modem 20 may communicate with a remote server 
22 via the Intem^ 24, using my Intmiet protocol, such as HTTP, for example, or secured 
protocols if desired. In a similar prior-art configuration, die reader may be hooked to the ceUular 
phone, which serves as a host, and carries much of the application's logic. 

Reference is now made to Fig. 2, which is a schematic illustration of a smart card device, 
generally designated 50, according to an embodiment of tiie invention. 

Smart card device 50 con^irises a device controller 52 connected to a smart card reader 
64 and a MODEM 54. It wffl be appreciated by persons knovrfedgeable in the art that the 
MODEM may be replaced by any oth^ networic interfece component, sudi as Bluetooth, I-R, 
or Etiiemet as examples. The controUer 52 may comprise minimal procesang capabilities, such 
as transfening and correctly packaging one communications protocol to another in order to 
control any of the embodied ctevices. The memory may include Read Only Manory (ROM), 
Non- Volatile Memory (NVM) and Kandom Access Memory (RAM), for example, A smart 
card read^ 64 is connected to controller 52. 

In a further ^nbodiment of the invention, smart card device 50 may fiirtiier comprise a 
display 56 and minimal keypad having at least one key 58, or ports for attaching external 
equipment, such as an external keypad (not shown), or a printer. 

Li yet additional embodiments of the invention, the device may contain an encryption 
device such as a SIM. 

In yet additional embodiments of the invention, the device m^ contain a battery or an 
external power source. Ak^ativdy, the specific communication media, to which the device is 
attached, may provide the power supply for die device, or power may be supplied from a 
combination of the above sources. 
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The smart card device 50 is configured to (fiat or hook into any netwoifc 66, sudi as a 
telephone network, for example, and complete a two-way protocol, with fte server 62. The 
serve- 62 may be any statable network s&rve^, such as an Ihtoiiet server, or an Interactive Voice 
Response server (IVR), depending on the desired netwoifc in use. In this embodiment, data is 
5 read from tiie smart card 60 by smart card reader 64 and transferred via MODEM 54 using 
voice-MODEM protocol, for esample, to IVR Server 62. 

In an exemplary embodiment, ilbstrated in Eg. 2a, the anart card device 50 may be 
coupled between a tdephone instnimait 67 andlhewaD-sockrt of lie telephone line 68. 

Similarly, in an exonplaiy embodiment, iBustrated in Fig. 3, a smart card device, 
10 gHiCTaDy designated 100 may be connected to a transcdver, such as a cellular telephone 104, via 
any of the cellular telephone interfaces (such as, IR, ear-phone-speaker, or Bluetooth), and 
provide all the required access fiinctions to a remote server 106. The remote saver 106 may be 
an rVR or human service provide, or an SMS server. 

Smart card device 100 comprises a controller 52 connected to a smart card reader 64 
15 (similar to the reader of fig. 2) and coupled to an infra-red (IR) transcdver 102, or any other 
inter&ce capable of being siq)ported by cellular phones. 

Ill the embodimait of Fig. 3, the device 100 transmits and receives the data read hy 
smart card reader 64 via the IR transceiver 102 to an IR transceiver located widiin the cellular 
dewce 104, which may then act as a device controller fyr a spedfic applicatioa For exan^le, IR 
20 recover 104 may cause the ceSlular phone to tranamt authenticatirai data i^d from the smart 
card 60 to remote server 106, using atiy of the cdhilar phone channds. After secure 
idKitification of the use- and verification that ID matdies the data from the smart card, the server 
106 may audiorize the ceflular phraie 104 to interact with another external device and perform a 
requested/authorized action, or alternatively, the server may directly instruct the device to 
25 provide the requested access. This example is illustrative of the use of a smart card device of the 
present invention for building low-cost "^e-keepers" based on cdlular connectivity and smart 
card authaitication capabilities. 

In an alternative embodiment, the IRttanscdvenwlhinthe celhdar phone 104 may allow 
the tdephone's diq)lay and keyboard to be used. The cellular phone may be used fi)r M human 
iO dialogue with the serv^ 106. 
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The operation of the smart card device may be described with reference to the flow chart 
of Fig, 4, to which reference is now made. The user establishes communicatioa with the server 
of the service supplier (step 200). Communication may be established by dialing from a phone, 
as shown in the embodiment of Eg. 2, or by hooking to the LAN, or by any other mean of 
5 joining the requested n^ork. A transaction (deal) is negotiated (step 201) or a service 
purchased or requested. 

The smart card may be required dther in order to complete the acceptance of the device 
into the network, in wMch case a handshake may be reqiured, or akemafivefy, the smart card 
may be required just for perfomiing the desired transactioa The smart card 60 is inserted into 

10 the smart card device 50 (step 202), which reads the information on the smart card (step 204). 
Alternatively, some networks may require that the card be inserted before goods or a service is 
purchased. After the smart card is inserted, the MODHVI changes from voice mode to data 
mode, as is known in the art, so as to allow data to be transfeired Afceroativdy, the netwoiic 
interfece may select the appropriate transactional state. 

15 In the prior art, user identity is g^erally authenticated in the following manner: First, the 

user "idmifies" himself for example by stating Ws name (or by reading the open information on 
the card). Secondly, the user may be requested to show Ae card: ownership of the card is 
percdved as a proof of identity. Since cards maybe lost, stolen,, or copied - an additional proof 
is often required. This proof may consist of a PEST or secret informadon (such as the maiden 

20 name of the card holder's mother), or by biometric infonnatiao, which typically cannot be given 
to others, or a combination thereof 

III an embodiment of the invention, the usq-^s own^hip of the card is proven by the 
insertion of the card into the device; the identity may be fiirther authenticated by transferring the 
smart card information to the service provider, and / or by uang additional mean like PIN and / 

25 or biometric identification. 

The PIN may be keyed on a keyboard that forms an integral part of the device, an 
external keyboard or the telephone keyboard. Biometric data (such as fingerprint, voice 
signature, iris pattern, hand palm, etc.) may be obtained using a biometric reader, integrated in 
the device, or by external means, as is known in the art. 

30 The PIN and / or biometric data may be sent to the service provider (or to mediator card 

manager) as is^ aicrypted, or authenticated in the smart card itself In the latter case the 
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authentication certificate is sent to the sendee provider, v^hidi may validate the certificate, as is 
laio>?m in the art. When encrypted for sending, the device may use the integrated SIM for 
encryption, or use the encryption engine of the smart card itself when posable. 

Typically, besides the need to identify the user/customer, the merchant or service 
5 provider needs to obtain proof of the esdstence of the transaction, and its details. At present, this 
confirmation is obtamed either by having the customer sign a piece of paper where the 
transaction data is recorded, or by generating a digital signature In an embodiment of the 
invention, confirmation m^ be obtained as follows: 

- The transaction information may be transferred to the device 50 for the user's to 
1 0 review and / or to confirm and possibly also to store on the card. 

Confirmation may be obtamed by keying a confirmation key (of the device, external, 
or the telephone keyboard), kejdng the PIN, or a biometric reader. 

This information may be sent to the ser>dce provider in a w^ similar to sending the 
identification. 

15 In an embodiment of the invention,_confirmation imy be obtained by generating an 

CToypted form, which ^combines' the transaction data and the authenticated identity. The 
'combined form* is sometimes referred to as a c&gital signature. This entire sequrace is also 
known as a "challCTge-response"^ mechanism. 

All of these identification and certification mechanisms may be carried out according to 

20 the flow chart of Eg. 4, to wMch r^ence is now made. The transaction information is 
transferred to the device 50 and displayed for approval (step 206). (The transaction information 
may also be stored in the card.) When the user types in his PIN (step 208), the card uses the 
transaction information and the PIN code in order to generate a distal prooi; or a certificate, or 
alternatively, the PIN may be sent to the server to be used for certification and authentication. 

25 The service provider (bank, for example) checks the authentication of the user/caller 

(query box 210), either by validating the certificate, or by verifying the provided PIN. If the 
signature is valid (step 212), the service provider can then allow the user/caller to proceed to 
order a service (step 214), such as loading e-money into the smart card, or just proceeding with 
the conversation with the same person in the service provider. If the certification or 

30 authentication processes fiils, the service provider may perform one of several steps, such as 
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requesting a retry to overcome errors, decline the transaction, abort the communication, or even, 
if authorized, disable the card (step 21 1), 

In a fiirther example, the smart card device may be utilized as a cash-loading banking 
terminal, that is, as a remote service point for loading e-money into the smart card from a bank, 
5 for example. Other applications vwB be described hereinbelow. 

Reference is now made to Fig. 5, which is a schMiatic illustration of anart card device, 
according to another embodiment of the invention. Elements having similar functions have been 
de^gcmted with amilar numerals and will not be desaibed fiirther. 

Fig 5 is a schematic illustration of a smart card device, generally designated 70, 
1 0 according to an embodiment of the invention. Smart card device 70 comprises a controller 52, 
which manages a anart card reader 60 (similar to the read^ of fig. 2), and an Ethernet interface 
72 for a LAN (Local Area Network) 74. In this embodiment, the smart card device 70 is 
configured to utilize the Ethernet interlace 72 and hook into a LAN 74, to access the Internet 
Server 62 direcdy from the device 70. The smart card 64 and the Memet server 62 can complete 
15 a client-server application over the Internet and LAN without any additional con^put^ for 
mediatioa The controller of the smart card device 70 simply acts as a communication enable, 
establishing the link for a complete dient-server configuratioiL 

In a fiirth^ embodiment of the invention, smart card device 70 may fiirther comprise a 
display 56 and keyboard 58 (amilar to Fig. 2). It may also contain an encryption module, such as 
20 a SIM. 

The smart card device illustrated in the aforementioned embodiments may be used in 
many diflferent applications, as will now be described by reference to the non-limiting exemplaiy 
applications herdnbelow. 

The smart card may be used for a remote credit/debit or pre-paid transactioa This allows 

25 for carrying out secure transactions from home. Iq tiiis case, the customer calls the merchant, 
inserts the card and the device at home and interacts directfy with the POS at the merchant's 
shop. The merchant's POS may communicate with tiie credit card company to receive 
authorization to charge the sale. This allows for eliminating one of the common fraud means, 
namely Card Not Present (CNP), vrfiich mainly exists in the MOTO (mail order telephone 

JO order). By eflfectivdy presenting the card (by inserting it into the device), the merchant is 
assured that the customer cannot dispute tiie transaction. Entering the PIN in addition to the 
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Standard credit card details adds a finther level of authentication, and pro>ddes a "sigaature'' on 
the transaction - this "signature" may be considered to be equivalent to a hand-written signature. 
This turns the "card not present" transactions into a My approved transaction, thereby 
preventing and redudng the level of fiaud. 
5 In an ex^platy application, the smart card device 50 may be used for bu5mg 

merchandise from a supplier over the telephone wh^ the card is not present, that is, the card is 
not viewable by the supplier. The use of the smart card device allows the purchaser to 
eflfectively preset and have his card verified from a remote location, as wiD be described with 
reference to the flow chart illustration of Fig. 6. 

10 The smart card device (of Fig. 2) is hooked on a phone-cord (step 302), connecting 

between the phone and the wall-socket (Fig. 2a). The user selects which service to dial into 
(step 304), such as shopping from a call center, or food delivery (pizza etc), or call-charge The 
user inserts a smart card into the smart card device (step 306) allowing the m&rctmt to receive 
data relating to the user's smart card. The merchant verifies the authenticity of the smart card 

15 (step 308). 

The user may activate a sdected combination of keys using the numeric keyboard of the 
telephone or smart card device to identify a particular transaction oflfered by the merchant (step 
310). The transaction information is transferred to the smart card device and displayed for 
approval (step 3 12). The transaction information may also be stored in the card. 

20 The user optionally enters a personal ID (PIN) number (step 314), using device's 

k^ad. The personal ID number (PIN) may be a merdiant spedfic PJN number allocated to the 
user by the merchant, or typically, it may be the card's PIN code. The use of the PIN is optional, 
depending on the merchant or card-issuer's policy. There is no need to transmit PIN information 
over the phone, as the card performs the authenticatioa 

25 The use of the PBsf provides an additional verification for the merchant (step 3 14) and 

may be required, before the transaction is approved (step 310), for example if the cost of the 
transaction is over some threshold. 

The merchant checks authenticity of the agnature, using standard certificate procedures 
(digital signatures) of the user (quay box 316) and if the agnature is approved (authentication 

30 completed) (step 3 18), completes the sale (step 320). Otiierwise, that is, if the distal signature is 
rqected (step 3 17), or if the card issuer or the "acquired* disqualifies the card - the service may 
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be denied (that is^ the transacdon is rqected), or ftuther, the issuer may de-activate the card, 
using the issuer authority. This scaiario may be carried out remotdy jfrom aiq^ telephone. 

In an alternative appfication, the smart card device of the embodiment of Fig. 3 may be 
utilized with a cellular phone to make transactions. 
5 Li a fiirther exemplaiy application, the smart card device 50 may be used for bujong 

merchandise, uang the ^mon&y or coupons pre\dously loaded and stored in the smart card. In 
this case;, the card may be used for an encash operation (instead of as a credit/debit card) and 
communication is directty to the on-line server of a merchant supplying goods or services. 

In a fiirther ex^plaiy application, the user may utilize the e-money stored on the card 

1 0 for ordering telephone calls that avoid the necessity of purchasing prepaid cards, for example. 

In a further exemplary application, the smart card device may be used for general 
authentication purposes, such as authentication of the ID of a telephone caller. For example, a 
caller who wishes to verify his bank balance may be requested to enter his smart card and PIN 
number (as described herdnabove) before infonnation is released over the telephone. The use of 

15 the smart card device thus adds a fiirdier level of user authenticatioa The need to enter a PIN 
number into the device is optional, but g^ves an improved level of security over existing methods, 
sudi as requesting personal information such as a passport number or moth^'s maiden name, 
information which also be known to other people. It will be appreciated by persons 
knowledgeable in the art that the PIN needs not be transnutted but rather may be tested by the 

20 card locally, and fiuthennore, all the communicated data may be encrypted as described 
hereinabove. 

In a fiirther application of the present invention, the smart card device may be installed 
at a merchant's point of sale (POS) such as a low-volume or mobile merchant's shop. In this 
case, tiie smart card device could be used as a regular credit/debit card or alternatively for e- 

25 money transactions. In this scenario, the smart card device may be in communication v^th the 
clearing-house server. This allows for removing the need for an e?q)ensive POS, as the device 
itself is capable of complying with payment regulations. 

In a forther application of the present invention, the smart card device of the present 
invention may be used in public transport such as rail, bus or flights. For example, the smart 

30 card device may be used from home to order ffight, rail or bus tickets and/or reserving seats. In 
this scenario, the user would call the transport company and purchase his tidcets and/or reserve 
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seats using his smart card inserted in the device, amilar to the mediod described above with 
reference to the flow daarts of Figs 3 and 6. The purchase may be by credit or with e-money and 
the purchase/reservation information would be stored in the card (e-tidcet). In this case, the 
merchandize itself is also an electromc one, and therefore the transaction completion includes the 
delivery of the goods. 

The transport company (bus or rail) would then vexify the purchase/reservation 
information by reading the traveler's smart card via contact reader or RF tnmscdver installed on 
buses or at the railway station. In a similar manner, the smart card may be used in the device to 
obtain e-coupons from suppliers, that is, coupons having monetary value for purchase of goods. 

The card authentication can be performed in several ways as described hereinabove with 
reference to Figs. 4 and 6. The device is transparent to the authentication requirem^ts, as this is 
carried out either by the card, or by the remote server. 

The above examples and description have of course be^ provided only for the purpose 
of illustration, and are not intended to limit the invention in any way. It will be appredated that 
numerous modifications, all of which M within Ae scope of the present invention, east. Rather 
the scope of the invention is defined by the claims that follow: 
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CLAIMS 



We Claim: 



1 . A smart card device comprisiBg: 

a controller; 

5 a smart card reader in communication with said controller; 

a communications interface coupled to said controller; and 
a power source. 

2. The smart card device according to claim 1, configured to be connectable between a 
telephone and the wall socket of a tel^hone line. 

10 3 . The smart card device according to claim 1, configured to be connectable to a cellular 
telephone. 

4. The smart card device according to claim 1, wherein said communications inter&ce 
comprises at least one of a group including a MODEM, Ethernet, infira-red (DR.), RF 
and audio tones. 

15 5 . The smart card device according to claim 1, fiirther comprising: 
a display screen; and 
a numeric and/or fimctions keypad. 

6. The smart card device according to claim 1, fiirther comprising: 
encryption means. 

20 7, The smart card device according to claim 1, wherein sdd power source comprises at 
least one energy source fi-om a group including an internal battery, an external power 
inlet, the communication media to which the device is coupled and a rechargeable 
battery. 

8. The smart card device according to claim 1, fiirther comprising a connector for 
25 external devices, said external devices comprising any of a group including a printer, a 

keypad and a biometric data reader. 

9- The smart card device according to claim 1, fiirther comprising at least one of a group 
including a printer, a keypad and a biometric data reader integrated within the device. 
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10. The smart card device according to claim 1, whereia said smart card reader further 
comprises at least one of a group of processing components including a additional 
computation capabilities, additional communication inter&ces and additional 
encryption capabifities. 

1 1 . The smart card device according to claim 1, v^erein said smart card reader jfiirther 
comprises at least one memory component, said at least one memory component 
comprising at least one of a group including Read Only Memory (ROM), Non- 
Volatile Memory (NVM) and Random Access Memory (RAM). 

12. A system for remotely verifying the identification (authentication) of the user of a 
smart card, the system comprising: 

a smart card device, comprising: 
a controller; 

a smart card reader in commwiication with said controller; 

a communication network interface coupled to said controller; and 

a power circuit, and 
a remotely located server in communication with said communications 
interface comprising means for verifying the validity of the smart card being read 
by said smart card device or other data keyed into said device. 

13. The system according to claim 12, wherem said remotely located server fiirther 
comprising means for validating a certificate or generating a ""challenge" and 
accepting the "response" for said challenge. 

14. The system according to claim 12, wherein said other data comprises at least one of a 
group mduding a personal identification number (PM) and biometric data. 

15. The system according to claim 12, wherein said smart card device is configured to be 
cormectable between a telephone and tiie wall socket of a telephone line. 

16. The system according to claim 12, wherein said remotely located server is any one of 
a group including an Intemet server and an Interactive Voice Recognition server 
(TVR), or a Point Of Sale (POS). 



wo 2004/001658 



PCT/IL2003/000525 



15 

17. The system according to claim 12, wherein said communications interface is at least 
one of a group including a MODEM, Ethernet, infra-red, RF, and audio tones. 

18. The system according to claim 12, wherein said smart card device is configured to be 
connectableto a cellular telephone. 

19. The system according to claim 12, wh^ein said smart card device further comprises: 

a display screen; and 

a numeric and/or fiinctions keypad. 

20. The system according to claim 12, wherein said smart card device fiirther comprises: 

an encryption module. 

21. The system according to claim 12, whereia said power source comprises at least one 
energy source from a group including an internal battery, an external power inlet, the 
communication media to which the device is coupled and a rechargeable battery. 

22. The qrstem according to claim 12, wherein said smart card reader further comprises at 
least one of a group of processing components mcluding an additional computation 
capabilities, additional communication interfaces and additional encryption 
capabilities. 

23 . The system according to claim 12, wherein said smart card reader fiirther comprises at 
least one memory component, said at least one memory component comprising at 
least one of a group including Read Only Memory (ROM), Non- Volatile Memory 
(WM) and Random Access Memory (RAM). 

24. The system according to claim 12, wherein said remotely located server further 
comprises means for transferring e-goods or e-money. 

25. A method for verifying the identification of the remote user of a smart card, the 
metiiod comprising the steps of: 

inserting a smart card into a smart card device, said smart card device 
comprising: 

a controller; 

a smart card reader in communication with said controller; 
a communications interfece coupled to said controller; and 
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a power source; 

transmitting data from the smart card, via said communications interface, 
to a remotely located server; 

inputting privately known information into said smart card device and 
transmitting said proof of ^gnature (certificate) to said remotely located server; 
and 

said remotely located server verifying that said privately known 
information is a valid one for the card. 

26. The method according to claim 25, wherein said privately known information 
comprises at least one of a group including a personal identification number (PUSf) and 
biometric data, or other personally known information. 

27. The method according to claim 25, wherein said device contains a power source, said 
power source comprising at least one energy source fi*om a group including an 
internal battery, an external power inlet, the communication media to which the deAdce 
is coupled and a rechargeable battery. 

28. The method according to claim 25, wherein said device also contains encryption 
means. 

29. The method according to daim 25, wherem said remotely located server transfers 
transaction information to said smart card device for approval. 

30. A method for remotely purchasing goods or services, the method comprising the 
steps of: 

inserting a smart card into a smart card device, said smart card device 
comprising: 

a controller; 

a smart card reader in communication with said controller; 

a communications mterface coupled to said controller; and 

a power source; 
selecting an item to be purchased firom a supplier; 
transmitting data read fi^om the smart card, via said communications 
interface, to a remotely located server in conmiunication with said supplier; 



wo 2004/001658 PCT/IL2003/000525 

17 

said remotely located server transferring transaction information associated 
with the purchase to said smart card device for approval; and 
storing said transaction information in said smart card. 

31. The method according to claim 30, fUrther comprising the step of authenticating tlie 
identity of the smart card user 

32. The method according to claim 30, wherem said step of authenticating comprises the 
steps of: 

inputting privately known information; 

said smart card veriJ^dng that said privately known information matdies the 
smart card data; and 

generating a certificate validating the transaction. 

33. The method according to claim 32, wherein said privately known information 
comprises at least one of a group including a personal identification number (PIN) and 
biometric data. 

34. The method accorcfing to claim 32, wheran said step of authenticating is performed 
by said remotely located server. 
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